Describe chengcui/Configure_EdgeRouter_X here.
Configure EdgeRouter-X
Contents
introduction of my 1Gbps EdgeRouter-X
The EdgeRouter X is a Gigabit router with advanced network management and security features.
configure sub-nets
remove eth1,eth2,eth3,eth4 from switch0
configure # Remove eth1,eth2,eth3,eth4 from switch0 delete interfaces switch switch0 switch-port interface eth1 delete interfaces switch switch0 switch-port interface eth2 delete interfaces switch switch0 switch-port interface eth3 delete interfaces switch switch0 switch-port interface eth4 commit
setup interface, DHCP, NAT and DNS services
set interfaces ethernet eth1 address 192.168.1.1/24 set interfaces ethernet eth1 mtu 2018 set service dhcp-server shared-network-name LAN1 subnet 192.168.1.0/24 default-router 192.168.1.1 set service dhcp-server shared-network-name LAN1 subnet 192.168.1.0/24 dns-server 192.168.1.1 set service dhcp-server shared-network-name LAN1 subnet 192.168.1.0/24 lease 86400 set service dhcp-server shared-network-name LAN1 subnet 192.168.1.0/24 start 192.168.1.10 stop 192.168.1.99 set service dhcp-server shared-network-name LAN1 authoritative enable set service nat rule 5010 description 'NAT for LAN1' set service nat rule 5010 protocol all set service nat rule 5010 log disable set service nat rule 5010 outbound-interface eth0 set service nat rule 5010 source address 192.168.1.0/24 set service nat rule 5010 type masquerade commit set interfaces ethernet eth2 address 192.168.2.1/24 set interfaces ethernet eth2 mtu 2018 set service dhcp-server shared-network-name LAN2 subnet 192.168.2.0/24 default-router 192.168.2.1 set service dhcp-server shared-network-name LAN2 subnet 192.168.2.0/24 dns-server 192.168.2.1 set service dhcp-server shared-network-name LAN2 subnet 192.168.2.0/24 lease 86400 set service dhcp-server shared-network-name LAN2 subnet 192.168.2.0/24 start 192.168.2.10 stop 192.168.2.99 set service dhcp-server shared-network-name LAN2 authoritative enable set service nat rule 5020 description 'NAT for LAN2' set service nat rule 5020 protocol all set service nat rule 5020 log disable set service nat rule 5020 outbound-interface eth0 set service nat rule 5020 source address 192.168.2.0/24 set service nat rule 5020 type masquerade commit set interfaces ethernet eth3 address 192.168.3.1/24 set interfaces ethernet eth3 mtu 2018 set service dhcp-server shared-network-name LAN3 subnet 192.168.3.0/24 default-router 192.168.3.1 set service dhcp-server shared-network-name LAN3 subnet 192.168.3.0/24 dns-server 192.168.3.1 set service dhcp-server shared-network-name LAN3 subnet 192.168.3.0/24 lease 86400 set service dhcp-server shared-network-name LAN3 subnet 192.168.3.0/24 start 192.168.3.10 stop 192.168.3.99 set service dhcp-server shared-network-name LAN3 authoritative enable set service nat rule 5030 description 'NAT for LAN3' set service nat rule 5030 protocol all set service nat rule 5030 log disable set service nat rule 5030 outbound-interface eth0 set service nat rule 5030 source address 192.168.3.0/24 set service nat rule 5030 type masquerade commit set interfaces ethernet eth4 address 192.168.4.1/24 set interfaces ethernet eth4 mtu 2018 set service dhcp-server shared-network-name LAN4 subnet 192.168.4.0/24 default-router 192.168.4.1 set service dhcp-server shared-network-name LAN4 subnet 192.168.4.0/24 dns-server 192.168.4.1 set service dhcp-server shared-network-name LAN4 subnet 192.168.4.0/24 lease 86400 set service dhcp-server shared-network-name LAN4 subnet 192.168.4.0/24 start 192.168.4.10 stop 192.168.4.99 set service dhcp-server shared-network-name LAN4 authoritative enable set service nat rule 5040 description 'NAT for LAN4' set service nat rule 5040 protocol all set service nat rule 5040 log disable set service nat rule 5040 outbound-interface eth0 set service nat rule 5040 source address 192.168.4.0/24 set service nat rule 5040 type masquerade commit set service dns forwarding listen-on eth1 set service dns forwarding listen-on eth2 set service dns forwarding listen-on eth3 set service dns forwarding listen-on eth4 commit save
setup Drop Tail traffic policy
This is a simple drop-tail queuing policy.
set traffic-policy drop-tail DropTail queue-limit 20000 set interfaces ethernet eth1 traffic-policy out DropTail set interfaces ethernet eth2 traffic-policy out DropTail set interfaces ethernet eth3 traffic-policy out DropTail commit save
check queuing policy on each interface
ubnt@EdgeRouter-X-5-Port:~$ sudo tc -s qdisc show dev eth1 qdisc pfifo 8004: root refcnt 2 limit 20000p Sent 59214427 bytes 731873 pkt (dropped 0, overlimits 0 requeues 0) backlog 0b 0p requeues 0 ubnt@EdgeRouter-X-5-Port:~$ sudo tc -s qdisc show dev eth2 qdisc pfifo 8005: root refcnt 2 limit 20000p Sent 22673859 bytes 341111 pkt (dropped 0, overlimits 0 requeues 0) backlog 0b 0p requeues 0 ubnt@EdgeRouter-X-5-Port:~$ sudo tc -s qdisc show dev eth3 qdisc pfifo 8006: root refcnt 2 limit 20000p Sent 3222912673 bytes 2143763 pkt (dropped 0, overlimits 0 requeues 0) backlog 0b 0p requeues 0